APPROVED 
BY 

DRAFTSMAN 


O.G. 




cuss 


SUBCLASS 



M ~# 



1/4 



SOME 
IP ADDRESS 



DIFFERENT 
IP ADDRESS 



102 



101 



103 
1 



HOST 


1 1 h 


NAT 







APPROVED 

BY v 
DRAFTSMAN 


O-G. FIG. 


OI ACQ 


3UDUUW3 




2/4 



12 3 
01234567890123456789012345678901 



NEXT PAYLOAD 



RESERVED 



PAYLOAD LENGTH 



VENDOR ID (VID) 



Fig. 2a 



2 



201 



1 2 3 

01234567890123456789012345678901 



NEXT PAYLOAD 



RESERVED 



PAYLOAD LENGTH 



TYPE CODE: CURRENTLY 0 FOR IPv4 ADDRESSES 



INITIATOR IPv4 ADDRESS AS SEEN BY THE NODE SENDING THIS MESSAGE- 



RESPONDER IPv4 ADDRESS AS SEEN BY THE NODE SENDING THIS MESSAGI 



Fig. 2b 



1 

0123456789012345 


2 3 
6789012345678901 


SOURCE PORT (500) 


DESTINATION PORT 


UDP LENGTH 


UDP CHECKSUM 


MUST BE ZERO (0) 


^ PROTOCOL 


RESERVED (MUST BE 0) 



226 



Fig. 2c 



227 
225 
224 
222 



APPROVk'O 
UHArTS M Apt 


CJ.'j. FIG. 


CLASS 


SUBCLASS 



3/4 



INITIATOR 



DURING 
IKE < 
PHASE 1 



201' 



] 



RESPONDER 



201" 



□ 
UJ 

03 

m 

L—l 



DURING 

IKE 
PHASE 2 • 
(QUICK 
MODE) 



301 



211' 212' 213' 



AH/ESP PROCESSING 



302 



ENCAPSULATION OF 
DATAGRAMS 
INTO UDP 


306 
s 




TRANSMISSION 
OF 

KEEPALIVE PACKETS 







211" 212" 213" 




305 



NAT 

HZHZK 



303 
S 




DECAPSULATION OF 
DATAGRAMS 
FROM UDP 


304 v 





AH/ESP PROCESSING 



307 



RECEPTION AND 
DISCARDING OF 
KEEPALIVE PACKETS 



Fig. 3 



APPROVed 
BY 

draftsman' 


O.G. 


FIG. 


CLASS 


SUBCLASS 



4/4 




MODIFIED IP HEADER 



UDP HEADER 



INTERMEDIATE HEADER 



IP PAYLOAD 




1 



CONTROL 



IKE 



EN/DECR. 



PACKET ASSEMBL. / DISASSEMBL. 
* 




500 



1 



NETW. IF 



501 



A 
V 



Fig. 5 



